CVE-2013-1346

Microsoft Malware Protection Engine < 1.1.9506.0 - Remote Code Execution via Crafted File

Title source: llm
STIX 2.1

Description

mpengine.dll in Microsoft Malware Protection Engine before 1.1.9506.0 on x64 platforms allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
http://technet.microsoft.com/security/advisory/2846338

Scores

EPSS 0.1164
EPSS Percentile 95.5%

Details

CWE
CWE-119
Status published
Products (1)
microsoft/malware_protection_engine < 1.1.9402.0
Published May 15, 2013
Tracked Since Feb 18, 2026